ClamWin Free Antivirus Forum Index
ClamWin Free Antivirus
Support and Discussion Forums
Reply to topic
'Beginner-Mode' ClamWin/Clam Sentinel on Win7-64 OS - Tips ?
CeipeX


Joined: 16 May 2016
Posts: 4
Location: germany
Reply with quote
Hello,

after reading and searching for days I found someone who wrote in that german 'Thinkpad Forum';
he seems to be satisfied with this combination - beside them 'normal' behaviors in the web, that's clear.

Now, that i've been learning and using Linux Mint in 3-4 different versions, and my W7-licences were
resting in backups (disk- & system-BUs on HDD) since last summer, I want to set up something little
more privat on my i5-desktop (maybe interesting when it comes to CPU-load related themes - doesn't matter).

Nearly all simply possible tweaks for a bit more privacy and/or illusion (?) of that are done; now my
temporary choice of AV is Panda free.
(EAM ends soon - no need to pay ~30,- EUR for nothing dangerous that _not_ happend in 3 years).

The 'loved' benefits of OnlineArmorFree are not twice usable on the same machine, the support answered.
(maybe my next question will be in this direction, because ZoneAlarm is not really 'the dog I want beside
my bed watching'...)

The reason for a registration here is:

Can you tell me how to start with WinClam, so I won't make mistakes by missunderstanding what I read ?
(f.e. ZA-FW. caused 'not starting' with my too quick made 'presets' used to chose in OA)

One instruction told to activate all neccessary scans in lists, but shouldn't it be enough to use the 'promised'
> realtime < functions in Clam Sentinel ? (if scanning like MBAM or EEK does is not wanted by that combi)

If I understood other posts wrong - who made me believe it would be possible to have an alternative to
them better known 'leaders' on the (free) market - please teach me the minimum of knowledge for just
using this 'realtime-functions' (in that list on the homepage of Sentinel for example).

I hope you who read this görmanized english understand my wish to use some more protection than 'just'
brain.exe and hardware-FW. - but no 'free twins' from rel. untrustworthy commercial sources...
(I've read enough about privacy concerns and 'healthy interests' of companies giving something 'for free')

So -> just activating the required points in the list/s without especially editing folders or 'places' in lists is OK ??

- thank you all for your time, patience while reading this, and help, I hope -

CeipeX 'the Snooshark'
- from sailing city kiel -
View user's profileSend private message
GuitarBob


Joined: 09 Jul 2006
Posts: 4266
Location: USA
Reply with quote
Thanks for using ClamWin!

First of all, ClamWin even when used with Clam Sentinel does not provide as much user protection as one of the commercial free AV programs like Panda Free. You should use ClamWin/Clam Sentinel as a backup to another free scanner. Most of the free commercial scanners scan in real-time while ClamWin only scans "on demand"--as scheduled or when you do a manual scan. Clam Sentinel is a "resident" scanner--always working, but it can not provide protection against fast-acting malware--it works best at scanning unactivated, downloaded files.

The Clam Sentinel defaults are sufficient. You may want to set up your own extensions for ClamWin to scan, as it scans all extensions, which is too many--malware will use one of maybe 50 extensions--.dll, .exe, .htm, .html, .js, .doc, .docx, .rar, .rtf, .scr, tmp, and .zip are most often used.

You should read the ClamWin Help files to get familiar with the program and then experiment with the options available under the different user preferences/tools.

Panda Free is a good AV, and it provides good protection by itself, and the free Cloud version should not cost you anything. Panda also call their 30 day trial version "free" but you have to pay for it after 30 days. My favorite real-time AV, however, is Windows Defender. It is also free and will not give you any trouble. It also works well with ClamWin/Clam Sentinel. Whatever real-time AV you use, if you use it with ClamWin/Clam Sentinel, be sure to exclude the ClamWin and Clam Sentinel .exe files as processes from the Windows Defender scans to prevent any conflicts--also exclude the .clamtmp file as a file type. This may prevent some conflicts if they both scan at the same time.

Regards,
View user's profileSend private message
CeipeX


Joined: 16 May 2016
Posts: 4
Location: germany
Reply with quote
Hello GuitarBob,

thank you for answering, I love guitars too.

Your advice to use other AV is a bit disappointing, even if I understand your intention not
to make people believe to be so well protected, as they are with the most modern and developed
programs, when only _Sentinel*_ on Winclam is running.

If the word 'running' (still) fits ? - *you mean '...not realtime...' ? as you set it in opposit to others
- I read in 'features' or in an instruction

...real-time...
scans real-time...
full featured real-time scanner
proactive heuristic scanner

So 'running' means 'waiting' in real time, like other programs without activity on CPU but f.e.
autostarted in 'services' ?

What Panda does is clear before installing it - thank you.

Since your 'tipp' to use Defender it seems to end here for me, asking for or expecting help.
We _never_ used or trusted these 'onboard-security' - and our temporary settings will surely
make it impossible to have them running well, because all(?) AV/AM-SW. wants to contact
its 'builder' for the known usual reasons.

If I would want to go on using Panda f.e. I wouldn't try to substitute it with a little 'weaker' alterntive program.
There wouldn't be a need to, as it is good enought alone running.

In that other answer a few days earlier you wrote 'web-based injection / malware + exploits' -
for that maybe MBAR* & MBAE is enough for the moment, if the one* will exist longer as a solo
program in the future too, that would be good.

My idea isn't creating 'challange' by doing something exiting and new, but having a bit more
security-analysis (right words?) 'running' _real-time_ than nothing but MBAR & MBAE and MBAM
if neccessary.

As I wrote, nothing seriously happend while using Emsisoft for three years, Avast before showed some
'comercializers' to let 'fear turn to buys' - thats all, so our behavior seems to fit, and quite hard filtering
in the browser/s is the most important 'first instance' - maybe the reason for NO trouble at all - for years !

To have things like scanning downloaded files (music/videos/pictures/programs) - should run automatically -
the words 'real-time' & 'real time' together with 'scan/scanner' and 'proactive heuristic' looked too good...

Sad to have found nonrealistic recommendation of these two bundled programs, it could have been
--> just a bit more than nothing <--
(as many users of brain & experience tell, they don't have AV/AM at all, without problems since many years!)

A good idea for a relative easy to use & to set up solution (without these often watched contacts to the builder)
seems to have been an illusion - no problem, for the 'good & free feeling' ^ ! ^ there will be 'LINUXes'.

thank you once more - good luck with the (more realistic ?) 'project' to build ONE AV with these 2 programs.

(and please take care to let people who manipulate written features with 'real-time' in different combinations
DELETE those FAKE-features wich make interested readers believe something not existing, for DONATIONS?)

fare well
View user's profileSend private message
GuitarBob


Joined: 09 Jul 2006
Posts: 4266
Location: USA
Reply with quote
Clam Sentinel scans a file when it is added, modified, or copied on your computer. It is "resident" but it does not "control" the file until it determines it is okay like the "real-time" AVs do. When a file is added, modified, or copied, Clam Sentinel scans the file with its own heuristics (which is very fast) and then it scans the file with the ClamWin signatures (which is not so fast). The Clam Sentinel heuristics are good but simple and work only on files, but lots of malware is now fileless and has other capabilities that were not considered when the Clam Sentinel heuristics were developed..

A free stand-alone AV like ClamWin/Clam Sentinel is at a disadvantage because it does not have the resources to support an ongoing complete virus detection/remediation capability. If you want really good protection, use a paid commercial AV or a free version that is subsidized by a commercial AV with ClamWin/Clam Sentinel as backup/second opinion scanners.

Regards,
View user's profileSend private message
ROCKNROLLKID


Joined: 23 Sep 2013
Posts: 562
Location: **UNKNOWN**
Reply with quote
Unfortunately, for all of us, Andrea (led developer) has abandon Clam Sentinel about 2 years ago now. No one has heard from word for him and no one has been developing Sentinel ever since. Clam Sentinel will more likely remain how it is until someone can pick it up again.
View user's profileSend private message
CeipeX


Joined: 16 May 2016
Posts: 4
Location: germany
Reply with quote
Hello ROCKNROLLKID,

thank you for that 'sad' explaination - now I do understand a little bit better why it's not that satisfying to search for a solution I 'dreamed' of.
(sad means the fact of stopped developement, not your answer)

So it's clear that the good* GuitarBob tried his best to help me, with what is able or possible to create with existing tools.

Please *excuse my disappointed reaction - maybe you understand it, if you imagine, that I thought it was an ongoing work, with those
'promised' functions.

That it's not the greatest protection was clear to me, but it had to run automatically with its known features.
- without the perspective of using/donating/having something that gets better in the future, my knowledge will not be enough to
tweak' that couple for a good work...

Once more, thank you for clearing the situation by opening my eyes for the reality - maybe I should try harder to find the dates of releases.
(if you 'want' something you are to quick sometimes, excitement and phantasy with idealistic expectations go well together, but where... ???)

hope you both (all?) could smile a bit at least

come to sailing city kiel
,_/|_.
~~~~~~~
View user's profileSend private message
GuitarBob


Joined: 09 Jul 2006
Posts: 4266
Location: USA
Reply with quote
It is a bit "sad" that no AV is a good as it would like its users to think it is. There is a constant battle between AVs and malware. Many AVs have given up and started licensing the Bitdefender engine because they no longer have the will/resources to fight the battle. The best we users can do is implement "defense in depth" protection with a few security products that compliment each other and make it harder for malware to infect us. Eventually only the big, intelligent, resource-heavy will be in the battle--on both the AV and malware sides.

Regards,
View user's profileSend private message
CeipeX


Joined: 16 May 2016
Posts: 4
Location: germany
Reply with quote
Hai GuitarBob,
(Hai is german for shark - or spoken 'high')

so your advice to put these CLAMs beside an/y other scanner meant to boost the effect/s of protecting programs ?
If we often read that more than 1 AM/AV interferes and (maybe) lowers the expected efficience of silly said: 1&1=2...
we would need to be able to divide the tasks of each program, like disabling f.e. 1 feature there and an other opposit.

That requires enough knowledge AND experience with both programs, and as it seems nowadays, there are not much
hooks to opt in or out in 'modern 'high evolution' security*programs. (if I was the developer, I wouldn't want the user to
manipulate important dependancies that could lead to 'bad results' - in which*one would or could you or I decide what works
well together with 2 CLAMs (my 'name' for that 'couple') ?

As most AM/AV scan incoming data like downloads or 'simply' inserted USB-devices, where would be the benefits of them 2 ?

I'm sure you understood my idea of leaving 'a big AM/AV' out by using more 'little specialists' together.
The 3 Malwarebytes MBAM (sometimes started) and MBAR + MBAE (constantly running) with a 'good surfing-behavior'
and well selected sources for download (includes 'daily news input' about attackers to expect) WITHOUT these nowhere
really loved built-in 'MS-heroes' - you know...

For a better understanding of my point of view AND state of (rel. low) knowledge + experiences with all that stuff
(maybe also interesting for visitors or other readers here with an equal 'medium' level)
I confess to be a big fan of SW.-Firewalls; if they allow to enable/disable enought/not too many functions and backups help
to survive all tough experiments, 'intelligent' FWs combined would be the basic element for me.

Maybe it would have been better to write that it's not my intention to save that little pay (30,-/year or 8ct/day) instead of
s.th. like '...not worth paying for 'cause nothing serious happend for years...' - it's not the money (donation is OK) but the idea !
View user's profileSend private message
ROCKNROLLKID


Joined: 23 Sep 2013
Posts: 562
Location: **UNKNOWN**
Reply with quote
No AV is 100% good. Malwarebytes is good a removal, but it fall behinds in protection. Malwarebytes is, and has always been, a supplement to a existing AV. It was never intend, even by the developers, to be use as a replacement to a AV. That is why you should something along side Malwarebytes. If you have anything from Windows 8.0 to Windows 10, you can just use Windows Defender along side of free Malwarebytes. Since Windows 8.0, Windows Defender was transformed into a full AV. Previously, it was just a anti-spyware. If you want good exploit/vulnerability protection without having to pay, you can use Microsoft's EMET tool.
View user's profileSend private message
'Beginner-Mode' ClamWin/Clam Sentinel on Win7-64 OS - Tips ?
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT  
Page 1 of 1  

  
  
 Reply to topic